Abstract: The Risk Management Framework (RMF) provides a structured approach to managing risks to the con-fidentiality, integrity, and availability of information systems. However, automating the RMF ...

"In a world where technology changes rapidly, it's hard to find great resources for in-depth expertise. LISA has a terrific combination of people who create the technology and people who implement it ...

My team has tooling that uses openscap on various Linux distros and platforms. Starting today (2025-04-21), openscap has started to end abnormally in a redhat/ubi9 container: [root@c58d2e82b7d0 /]# ...

In this guide, we'll delve into the intricacies of Linux security auditing with OpenSCAP, exploring its features, implementation, and best practices.

OpenSCAP-daemon is a service that performs SCAP scans of bare-metal machines, virtual machines and containers. These scans can be either one-shot or continuous according to a schedule. You can ...

When what was then called Red Hat Linux first appeared in 1994, Gunnar Hellekson was working as a student systems administrator for Drew University. Nearly three decades later, Hellekson (pictured) is ...

What's the difference? Why two versions of one enterprise Linux distro? While under the hood there are many specific differences, the big one is that the RHEL 8 distro family is based on older, battle ...

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Cory Benfield discusses the evolution of ...